Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer
File: JCmj7lCI89RTcqjjs2g0x16ubSk.cer (raw, json)
Hash identifier: OUvHHY0YC2XN4jNhJkcw3Or/XjdSOoNNlOOM52yUaBk=
Subject key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02317E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 16 Feb 2025 04:47:40 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 134233
IP: 45.120.4.0/22
IP: 103.60.64.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143742 (0x2317e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 16 04:47:40 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91EE96E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e5:41:1f:40:33:c8:ee:7d:13:1e:74:24:3c:
34:36:3f:5b:f8:d6:df:ab:c7:dc:65:b8:7b:4a:5e:
f8:93:b9:4d:c8:c7:05:d0:f7:f5:7f:7c:c9:76:90:
14:7c:f6:09:b2:a1:4f:d6:12:64:c8:63:1c:dc:c3:
26:41:8d:18:b2:94:d6:7c:89:df:89:f5:e8:40:1c:
84:7a:e3:f7:39:2b:8d:1b:46:ae:20:c0:55:a2:80:
00:fe:ed:da:71:b6:85:e2:09:59:83:44:0a:f9:85:
d2:be:d7:8d:5b:0f:81:e3:ac:6e:37:d7:ad:1c:7a:
be:0f:1f:95:d6:bd:08:ee:71:b0:96:b7:5a:fa:09:
96:8c:c3:4d:c9:35:e6:25:82:1e:84:c5:31:fe:a8:
6a:20:31:2c:06:60:53:50:93:01:18:73:b6:26:7d:
6f:8a:60:58:d3:61:cf:25:cb:79:3e:f8:51:14:69:
9c:de:c9:42:2d:78:e7:2f:12:e5:0d:1a:6d:0e:f1:
aa:6f:b8:08:9c:92:eb:5b:41:e0:e2:19:99:34:ed:
e8:6b:f6:04:c4:73:aa:3e:fa:0c:22:68:42:80:84:
22:61:77:fb:12:d9:23:2f:fd:43:6c:e3:f2:b6:2e:
e2:13:80:87:d9:86:02:b0:2f:9d:79:84:6e:ad:8c:
15:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134233
sbgp-ipAddrBlock: critical
IPv4:
45.120.4.0/22
103.60.64.0/22
Signature Algorithm: sha256WithRSAEncryption
c1:ca:16:26:ce:1a:77:87:e2:05:a1:b9:99:17:f1:df:d0:7f:
2a:2d:e2:38:9e:4b:dc:2a:03:fd:fe:bf:0c:bd:57:60:c2:61:
e1:bf:23:30:ab:d8:59:4b:fa:13:9e:01:17:6d:33:bf:25:3a:
f1:02:73:70:17:1d:8b:8e:b3:97:f1:74:d8:2d:26:47:a9:56:
0f:f7:be:2a:6c:a6:7d:fe:e0:66:6c:18:aa:fc:02:72:2d:a0:
9b:39:76:fa:a5:90:40:29:23:32:45:9e:e6:f1:1d:22:87:c2:
4e:c5:bb:a6:e2:6a:89:d4:db:54:be:6b:39:14:4b:f0:fd:23:
f5:0f:d0:9b:3c:75:12:19:43:ee:1f:42:4a:28:56:57:99:fb:
1a:2b:0e:8a:61:ca:5f:f3:5c:5e:a6:fe:d9:16:bc:33:91:0f:
03:fd:ea:df:5d:61:1a:49:52:7f:00:99:5e:45:54:b6:8f:af:
05:42:ad:e3:07:5a:89:fc:83:4b:93:5d:f3:15:4a:c6:55:84:
08:fd:bf:c1:f6:29:b9:b3:2e:23:fd:7b:67:87:1b:1c:dc:72:
4d:97:f9:ab:21:44:77:13:0f:87:88:5c:e8:d8:f0:10:67:ce:
bf:ee:e7:eb:fc:1b:e8:46:72:78:15:80:73:d2:9d:09:34:58:
8b:c4:ab:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:21:33 2025 by rpki-client